Cyber Threat Digest – 2025-09-25

🔥 Known Exploited Vulnerabilities (CISA KEV)

8 exploited vulns of note.

• CVE-2025-10585 — Google Chromium V8 Type Confusion Vulnerability — Google Chromium V8 (Added: 2025-09-23) — Details
• CVE-2025-5086 — Dassault Systèmes DELMIA Apriso Deserialization of Untrusted Data Vulnerability — Dassault Systèmes DELMIA Apriso (Added: 2025-09-11) — Details
• CVE-2025-38352 — Linux Kernel Time-of-Check Time-of-Use (TOCTOU) Race Condition Vulnerability — Linux Kernel (Added: 2025-09-04) — Details
• CVE-2025-48543 — Android Runtime Use-After-Free Vulnerability — Android Runtime (Added: 2025-09-04) — Details
• CVE-2025-53690 — Sitecore Multiple Products Deserialization of Untrusted Data Vulnerability — Sitecore Multiple Products (Added: 2025-09-04) — Details
• CVE-2023-50224 — TP-Link TL-WR841N Authentication Bypass by Spoofing Vulnerability — TP-Link TL-WR841N (Added: 2025-09-03) — Details
• CVE-2025-9377 — TP-Link Archer C7(EU) and TL-WR841N/ND(MS) OS Command Injection Vulnerability — TP-Link Multiple Routers (Added: 2025-09-03) — Details
• CVE-2020-24363 — TP-link TL-WA855RE Missing Authentication for Critical Function Vulnerability — TP-Link TL-WA855RE (Added: 2025-09-02) — Details

---

⚠️ Recent CVEs (NVD)

Latest CVEs with CVSS badges.

• CVE-2025-23248 — NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A su… LOW 3.3 — Details
• CVE-2025-23255 — NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary where a user may cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A … LOW 3.3 — Details
• CVE-2025-23271 — NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A su… LOW 3.3 — Details
• CVE-2025-23272 — NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerabili… MEDIUM 5.7 — Details
• CVE-2025-23273 — NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvJPEG where a local authenticated user may cause a divide by zero error by submitting a specially crafted JPEG fi… LOW 2.5 — Details
• CVE-2025-23274 — NVIDIA nvJPEG contains a vulnerability in jpeg encoding where a user may cause an out-of-bounds read by providing a maliciously crafted input image with dimensions that cause integ… MEDIUM 4.5 — Details

---

📰 Security News

Top headlines from trusted sources.

• Teen suspected of Vegas casino cyberattacks released to parents
  — Thu, 25 Sep 2025 12:51:18 GMT
• Microsoft will offer free Windows 10 security updates in Europe
  — Thu, 25 Sep 2025 12:45:06 GMT
• New Supermicro BMC flaws can create persistent backdoors
  — Wed, 24 Sep 2025 20:13:49 GMT
• OpenAI is testing a new GPT-5-based AI agent "GPT-Alpha"
  — Wed, 24 Sep 2025 20:09:25 GMT
• Kali Linux 2025.3 released with 10 new tools, Wi-Fi enhancements
  — Wed, 24 Sep 2025 18:30:02 GMT
• Cisco warns of IOS zero-day vulnerability exploited in attacks
  — Wed, 24 Sep 2025 16:52:50 GMT